Hi All,
Shouldn't it be so that others than the identified ApacheDs administrators
(like uid=admin,ou=system) shouldn't be able to see the attributes of the
Root DSE? When I use Apache Studio M2 v2.0.0.v20130628, any user can see
details all the naming context (including those not of his partition and
supportedSASLMechanisms).
I would say that this shouldn't be happening, as it could be a security
risk.
What do you think?
Regards,
Pierre Smits
*ORRTIZ.COM *
Services & Solutions for Cloud-
Based Manufacturing, Professional
Services and Retail & Trade
http://www.orrtiz.com